5 Does EMV reduce skimming? UK introduced EMV in 2006 Skimming fraud with UK cards, in millions domestic foreign Magstripe can still be cloned and used in countries that don t use the chip (notably USA) Worse still: chip provides the Track 2 magstripe data There are now moves to remove this `feature Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 5

8 EMV basics: key set-up Card and issuer have shared symmetric key which the terminal does not have Issuer has private/public keypair, used to sign data which the terminal can verify Some cards have a private/public keypair, used to sign data which the terminal can verify Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 8

16 One more weakness Terminal can be fooled into thinking a transaction was with PIN, while card & issuer know it was without PIN using a wedge aka Man-in-the-Middle attack for online and offline transactions root cause: terminal cannot authenticate response to offline pin verification [Murdoch, Drimer, Anderson, Bond, Chip & PIN is broken, 2010] This allows a stolen card to be used without PIN, but only as long as the card is not reported stolen (for online) if issuer allows PIN-less transactions (as is case in UK) or if the issuer misses the correct checks for this in the back-end Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 16

17 IV. Transaction For the transaction the card generates cryptograms ie data with a MAC, and for CDA-cards, also a digital signature For online transaction the card generates 2 cryptograms first cryptogram (ARQC) forwarded to the bank for approval second cryptogram (TC) confirming the transaction only after the card receives approval by the bank For offline transaction the card just generates onetc cryptogram A card may refuse an offline transaction, and force the terminal to go online Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 17

21 Formalisation of EMV in F# EMV can be formalised in 370 lines of F# code including all options SDA, DDA, CDA any card holder verification mechanism off/online transations Booleans parameters controlling these options can be left unspecified (to study all these options) or fixed (to consider just one) but remaining configuration (DOLs) has to be fixed we use minimal assumptions on DOLs taken from Dutch bank/credit cards hardcoded in the model, but could easily be changed Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 21

23 Analysis of the F# model F# can be translated to pi calculus by FS2PV tool and then analysed using ProVerif Translation to pi calculus explodes things a bit 370 lines of F# becomes 3 kloc of pi calculus But ProVerif can still verify security properties usually in minutes, but this requires some care! Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 23

25 Future work Including formal model of the issuer we don t know the configuration, so can only check EMV s example configuration Using F7 instead of ProVerif for verification F7 might give better /more predictable response time Making F# model executable with helper functions that implement low-level smartcard interaction, the model could interact with real cards and terminals gives high confidence that our model is correct could be used for model-based testing? Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 25

28 Conclusions EMV protocol suite is far too complicated too many options, written down in confusing way Formalisation possible in F# and result is comprehensible! Formal analysis using FS2PV & ProVerif reveals all known weaknesses The future of skimming Will skimmers move to the USA? For skimming cards there, or using the data they skim here? Erik Poll & Joeri de Ruiter Digital Security, Radboud University Nijmegen 28

A Guide to EMV Version 1.0 May 2011 Objective Provide an overview of the EMV specifications and processes What is EMV? Why EMV? Position EMV in the context of the wider payments industry Define the role

Overview of Contactless Payment Cards Peter Fillmore July 20, 2015 Blackhat USA 2015 Introduction Contactless payments have exploded in popularity over the last 10 years with various schemes being popular

EMV (Chip-and-PIN) Protocol Märt Bakhoff December 15, 2014 Abstract The objective of this report is to observe and describe a real world online transaction made between a debit card issued by an Estonian

September 2014 EMV and Small Merchants: What you need to know Mike English Executive Director, Product Development Heartland Payment Systems 2014 Heartland Payment Systems, Inc. All trademarks, service

PayPass M/Chip Requirements 10 April 2014 Notices Following are policies pertaining to proprietary rights, trademarks, translations, and details about the availability of additional information online.

EMV Frequently Asked Questions for Merchants May, 2014 Copyright 2014 Vantiv All rights reserved. Disclaimer The information in this document is offered on an as is basis, without warranty of any kind,

EMV : Frequently Asked Questions for Merchants The information in this document is offered on an as is basis, without warranty of any kind, either expressed, implied or statutory, including but not limited

How Smartcard Payment Systems Fail Ross Anderson Cambridge The EMV protocol suite Named for Europay- MasterCard- Visa; also known as chip and PIN Developed late 1990s; deployed in UK ten years ago (2003

EMV and Chip Cards Key Information On What This Is, How It Works and What It Means Document Purpose This document is intended to provide information about the concepts behind and the processes involved

EMV ADOPTION AND ITS IMPACT ON FRAUD MANAGEMENT WORLDWIDE A Mercator Advisory Group Research Brief Sponsored by FICO January 2014 Table of Contents Introduction...3 The EMV Standard and What It Does...3

October 2014 EMV and Restaurants: What you need to know Mike English Executive Director, Product Development Heartland Payment Systems 2014 Heartland Payment Systems, Inc. All trademarks, service marks

FAQ EMV EMV Overview What are the benefits of EMV cards? A: Several factors are driving the U.S. card market to migrate to chip-based cards using the EMV specifications. EMV offers advantages for consumers,

The Canadian Migration to EMV Prepared By: December 1993 Everyone But The USA Is Migrating The international schemes decided Smart Cards are the way forward Europay, MasterCard & Visa International Produced

THE ROAD TO U.S. EMV MIGRATION Information and Strategies to Help Your Institution Make the Change Advancements in technological capabilities, along with increasing levels of counterfeit fraud, led the

Vviewpoints DOI:10.1145/2602321 Inside Risks EMV: Why Payment Systems Fail What lessons might we learn from the chip cards used for payments in Europe, now that the U.S. is adopting them too? Ross Anderson

PayPass Level 2 Terminal Testing Test Descriptions for TIP and NIV cards Copyright The information contained in this manual is proprietary and confidential to MasterCard International Incorporated (MasterCard)

Getting Ready for EMV Allison Edwards Director Product July 21, 2014 Session Overview In this session: Fiserv answers your top questions on EMV Why EMV? What is the market status? What should I be doing?

Prevention Is Better Than Cure EMV and PCI Prevention Is Better Than Cure An independent view on the effectiveness of EMV and PCI in case of large-scale card compromise. Over the past couple of months,

THE FIVE Ws OF EMV BY DAVE EWALD GLOBAL EMV CONSULTANT AND MANAGER DATACARD GROUP WHERE IS THE U.S. PAYMENT CARD INDUSTRY NOW? WHERE IS IT GOING? Today, payment and identification cards of all types (credit

The U.S. Adoption of Computer-Chip Payment Cards: Implications for Payment Fraud By Richard J. Sullivan The fraudsters, phishers, hackers, and pickpockets who thrive off payment card fraud may soon have

PAGE ONE Economics CLASSROOM EDITION An informative and accessible economic essay with a classroom application. Includes the full version of Page One Economics, plus questions for students and an answer

ARTICLE: RELIABILITY OF CHIP & PIN EVIDENCE IN BANKING DISPUTES By Steven J Murdoch Smart cards are being increasingly used for payment, having been issued across most of Europe, and they are in the process

2 TABLE OF CONTENTS Intro... 2 Are You Ready?... 3 What Is?... 4 Why?... 5 What Does Mean To Your Business?... 6 Checklist... 8 3 U.S. Merchants 60% are expected to convert to -enabled devices by 2015.

Effective November 1, 2014 1. What is EMV? EMV is the global standard for card present payment processing technology and it s coming to the U.S. EMV uses an embedded chip in the card that holds all the

EMV FAQs Contact us at: CS@VancoPayments.com Visit us online: VancoPayments.com What are the benefits of EMV cards to merchants and consumers? What is EMV? The acronym EMV stands for an organization formed

August 2015 A RE T HE U.S. CHIP RULES ENOUGH? A longer term view of security and the payments landscape is needed. Abstract: The United States is finally modernizing its card payment systems and confronting

Safe payments on the Net Chris Mitchell Information Security Group Royal Holloway, University of London http://www.isg.rhul.ac.uk/~cjm Internet e-commerce Focus of this talk is security issues for e-commerce

FAQ on EMV Chip Debit Card and Online Usage Security enhancement on HSBC India Debit Card A Secure Debit Card HSBC India Debit Cards are more secure and enabled with the Chip and PIN technology? You can

U.S. consumers are receiving new debit and credit cards with embedded chip technology that better stores and protects cardholder information. These new chip cards are part of the new card standard, Europay,

To ensure the functioning of the site, we use cookies. We share information about your activities on the site with our partners and Google partners: social networks and companies engaged in advertising and web analytics. For more information, see the Privacy Policy and Google Privacy &amp Terms.
Your consent to our cookies if you continue to use this website.